scrapfly-browser

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The skill's SKILL.md shows it connects the agent to arbitrary public websites via the Scrapfly Cloud Browser (e.g., page.goto(...), page.evaluate(...) extracting links, infinite-scroll testimonial scraping, multi-page navigation examples), meaning it fetches and ingests untrusted, user-generated web content that the agent reads and uses to drive navigation and scraping decisions.